When I want to provision a device, it creats me a CPC-* device in my on prem AD, but it won't sync to AAD. Even in Synchronzation Service Manager i see that one new device is added, i am not able to see the cpc-* device in AAD.
I already did configure the hybrid azure AD join in my AAD connect. And also did make sure, that the OU is syncing woth AAD. SPC also set. My AD is configured with (.)intra domain. Sync is with AD FS. OPNC gives me a warning, that AAD device sync coulndt find any cloud pc.
@xTwoTwo Did you check inside the computer object in on-prem AD the attribute usercertificate? Is this empty or filled in?
Yes, I did. In my case it was my webfilter, which blocked the the Microsoft CA.
Simplest way to troubleshoot is just to create a simple VM in azure. The VM should have the VNET which is integrated to W365. Then make sure the VM is AD joined (on-prem) and in the right OU, where tje CPC-* devices are. Check if this computer object is synced with Azure Ad. If notnstart to trounleshoot with (Dsregcmd /join etc.)